← Back to branch summary

~ubuntu-branches/ubuntu/saucy/gnutls26/saucy-security

« back to all changes in this revision

Viewing changes to debian/changelog

  • Committer: Package Import Robot
  • Author(s): Marc Deslauriers
  • Date: 2014-06-01 11:04:16 UTC
  • Revision ID: package-import@ubuntu.com-20140601110416-0nfvi0dyi9o9askd
Tags: 2.12.23-1ubuntu4.3
* SECURITY UPDATE: memory corruption due to server hello parsing
  - debian/patches/CVE-2014-3466.patch: validate session_id_len in
    lib/gnutls_handshake.c.
  - CVE-2014-3466

Show diffs side-by-side

added added

removed removed

Lines of Context:
debian/changelog
 
1
gnutls26 (2.12.23-1ubuntu4.3) saucy-security; urgency=medium
 
2
 
 
3
  * SECURITY UPDATE: memory corruption due to server hello parsing
 
4
    - debian/patches/CVE-2014-3466.patch: validate session_id_len in
 
5
      lib/gnutls_handshake.c.
 
6
    - CVE-2014-3466
 
7
 
 
8
 -- Marc Deslauriers <marc.deslauriers@ubuntu.com>  Sun, 01 Jun 2014 11:04:16 -0400
 
9
 
1
10
gnutls26 (2.12.23-1ubuntu4.2) saucy-security; urgency=medium
2
11
 
3
12
  * SECURITY UPDATE: certificate validation bypass